We all know that how much google help us in all kind of stuff.but when the matter of hacking comes google is a pro hacker.
|Latest Password Hacking Tricks Using Google – Advance Hacking|
The search engine giant has crawled loads of data which was intended to be protected by webmasters, but latest Advanced password hacking using Google. Today tekgyd will be discussing some practical dorks which will help you gain passwords, databases and vulnerable directories.
The basic methodology remains the same, query Google using specialized dorks with precise parameters and you are good to go. I assume you have basic working knowledge of google dorks.if you don’t know how to use google dorks for hacking purpose see this article
*.* How To Use Google Dorks For Hacking Purpose.
*.* 1000+ Google Dorks List 2016 Updated
Easy Steps To Hack Passwords-
#1. FTP passwords
ws_ftp.ini is a configuration file for a popular win32 FTP client that stores usernames, (weakly) encoded passwords, sites and directories that the user can store for later reference.
You can also this dork which uses “parent directory” to avoid results other than directory listings
even if the site or file has been taken offlline, you can still search the contents in the Google cache using the following dork
The ws_ftp password uses quite weak encryption algorithm, hence once you get the password, you can break it using the decryptor provided here or from here.
Must Read: Top 15 Best Penetration Testing Apps For Android
#2. PHP Hacking
Sites made in PHP have a file known as “config.php” which stores configuration and the username and password for the sql database the site is hosting. This password is required only once per transaction (i.e when ever admin logins or a transaction is committed at administrator level) and hence will be specified by the ‘require_once’ parameter in the config file or in index file.
to view php file contents
intitle:”Index of” phpinfo.php
you can also try the directory traversal attack in php using the following dork
if you are lucky, substitute the filename with ‘index.php’, download it, read it and get the password (hint:if you are not able to find it, try looking for globals.php).
Also Read: How To Hack Into Computer Using Pita Bread & Radio
#3. SQL Dumps
We will be hunting for SQL password dumps saved in database, here ext:sql specifies the type of password dump, e10adc3949ba59abbe56e057f20f883e is the md5 hash for 123456; one of the most common password people keep..and intext dork will allows to search inside the dump.
- Use different email providers, substitute gmail/yahoomail instead of somemail ,or try custom domain mail providers.
- Use different file extensions.
- Use different type of hashes, some older ones might be using md4 and some others might be using other prominent encryption algorithms.
- just mix everything up and try different combinations 🙂